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^ (57) Abstract: In one embodiment, a method for utilizing a pseudonym to protect the idenlily of a platform and its user is described. 
W The method comprises producing a pseudonym thai includes a public pseudonym key. The public pseudonym key is placed in a cer- 
tificate template. Hash operations are performed on the ceniHcate template to produce a certificate hash value, which is transformed 
Q from the plarfoiro. Thereafter, a signed result is remmed to the platfomu The signed result is a digital signature for the transformed 
^ certificate hash value. Upon performing an inverse transformation of the signed result, a digital signature of the certificate hash val- 
^ ues is recovered. This <figiial signature may be used for data int^rity checks for subsequent commnnicaiions using the pseudonym. 
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A PLATFORM AND METHOD FOR ESTABLISHING PROVABLE IDEmmES 
WHILE MAINTAINING PRIVACY 

Field 

5 This invention relates to the field of data security. In particular, the invention 

relates to a platform and method that protects an identity of the platform through creation 
and use of pseudonyms. 

Background 

10 Advances in technology have opened up many opportunities for applications that 

go beyond the traditional ways of doing business. Electronic commerce (e-commerce) and 
business-to-business (B2B) transactions are now becoming popular, reaching the global 
maricets at a fast rate. Unfortunately, while electronic platforms like computers provide 
users with convenient and efficient methods of doing business, communicating and 

15 transacting, they are also vulnerable for unscrupulous attacks. This vulnerability has 

substantially hindered the willingness of content providers from providing-their:content in 
a downloaded, digital format. 

Currently, various mechanisms have been proposed to verify the identity of a 
platform. TTiis is especially useful to determine if the platform features a 'trusted" device; 

20 namely, the device is configured to prevent digital content from being copied in a non- 
encrypted format without authorization. One verification scheme involves the use of a 
unique serial number assigned to a platform for identification of that platform. Another 
verification scheme, performed either independently from or cooperatively with the 
previously described verification scheme, involves the use of a permanent key pair. The 

25 permanent key pair includes (i) a unique public key that identifies the platform and (ii) a 
private key that is permanently stored in memory of the trusted device. The private key is 
confidential and is not provided outside the trusted device. However, these verification 
schemes pose a number of disadvantages. 

For example, each of these verification schemes is still subject to data aggregation 

30 attacks. **Data aggregation" involves the collection and analysis of data transmitted from a 
platfom over a period of time. TTius, the use of platform serial numbers and permanent 
keys for identification purposes has recently lead to consumer privacy concerns. Also, for 
both verification mechanisms, a user cannot easily and reliably control access to and use 
of the platform identity on a per-use basis. 
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